Niksoft Systems
Insider Threat Risk Analyst
NikSoft Systems Corporation is a recognized Information Technology solutions provider. Founded in 1998 and based in Reston, Virginia, NikSoft is a CMMI Level 3 Certified company with an established reputation for excellence and on-time delivery with a consistently high customer satisfaction rating from its Federal Government and private consulting contracts. NikSoft is currently conducting a search for an Insider Risk Analyst to support the cybersecurity team of a large federal agency. The candidate will experience an unparalleled enterprise environment with 100s of 1000s of personnel and 1000s of IT systems. Responsibilities: Lead or support insider risk investigations, including evidence preservation and forensic analysis. Leverage AI/ML to quickly assess potential threats and enable proactive, informed decisions, including blocking suspicious activities like unauthorized data transfers or flagging risky user behavior. Ability to utilize AI/ML and identify, assess, and mitigate potential security threats posed by individuals, leverage AI-driven solutions to analyze data, pinpoint risky behaviors, and generate actionable insights and recommendations for program resilience and mitigation strategies. Facilitate and support the coordination and response to active insider threats, collaborating with counterintelligence, threat intelligence, and law enforcement teams. Correlate behavioral, contextual, and technical indicators to identify and assess potential insider threat incidents. Support investigations by collecting and analyzing digital evidence, documenting findings, and escalating matters to the appropriate parties. Monitor user activity data and alerts to identify potential indicators of insider threats. Analyze system logs, network traffic, and endpoint alerts for suspicious activity. Correlate data from multiple sources (including user and entity behavior analytics (UEBA), data loss prevention (DLP), security information and event management (SIEM) tools, and endpoint detection and response (EDR) solutions) to detect anomalies and patterns indicative of insider threats. Develop and implement detection methods and strategies, including risk scoring and threat analysis tools, and refine alerts based on triage results, understanding of insider threats, and current events. Work closely with internal teams such as CISO Operations, Legal, Human Resources, and Counterintelligence, as well as external partners, to address and resolve insider risk incidents. Qualifications: Bachelor's degree in Information Security or a related field. 5+ years of relevant industry experience. Proficiency in cybersecurity concepts, network protocols, operating systems, encryption, authentication mechanisms, and security tools like SIEM, UEBA, and DLP solutions. Utilize AI-powered platforms like User and Entity Behavior Analytics (UEBA) to identify anomalous activities and patterns indicative of insider threats. Cultivate and heighten AI/ML models to refine detection capabilities by leading the creation and tuning rules, alerts, and risk scoring models to enhance efficiency and accuracy. Familiarity with insider threat regulations, information security reports, and relevant legal and privacy regulations. Experience conducting internal investigations, collecting digital evidence while maintaining chain of custody, and understanding forensic analysis tools. Strong ability to analyze complex data, identify patterns and trends, apply critical thinking and logic to evaluate evidence, and use quantitative and qualitative methods to assess risk. Strong analytical skills to interpret large volumes of data and correlate disparate security signals. Knowledge of incident response processes and digital forensics fundamentals related to insider threat scenarios. Strong communication skills for cross-team coordination, reporting, and documenting of findings. Ethical judgment and discretion, especially when handling sensitive personnel and organizational data. Candidates must be able to obtain a Postal Sensitive Clearance (US Citizenship or Green Card required). Additionally, candidates must not have traveled outside of the USA for a combined period not to exceed 6 months within the last 5 years. What it takes to be successful as Technical talent at NikSoft? Having a combination of job-related technical skills and most importantly personal traits will make you to be successful at NikSoft. Key personal traits include: strong problem-solving abilities adaptability effective and clear verbal communication and a commitment to continuous learning. With majority of tasks being accomplished remotely - having strong work ethic, ethical conduct, and the ability to collaborate effectively within teams are essential for you to be successful, keep the job and thrive on the job. We only hire and keep the best talents possible.
NikSoft Systems Corporation is a recognized Information Technology solutions provider. Founded in 1998 and based in Reston, Virginia, NikSoft is a CMMI Level 3 Certified company with an established reputation for excellence and on-time delivery with a consistently high customer satisfaction rating from its Federal Government and private consulting contracts. NikSoft is currently conducting a search for an Insider Risk Analyst to support the cybersecurity team of a large federal agency. The candidate will experience an unparalleled enterprise environment with 100s of 1000s of personnel and 1000s of IT systems. Responsibilities: Lead or support insider risk investigations, including evidence preservation and forensic analysis. Leverage AI/ML to quickly assess potential threats and enable proactive, informed decisions, including blocking suspicious activities like unauthorized data transfers or flagging risky user behavior. Ability to utilize AI/ML and identify, assess, and mitigate potential security threats posed by individuals, leverage AI-driven solutions to analyze data, pinpoint risky behaviors, and generate actionable insights and recommendations for program resilience and mitigation strategies. Facilitate and support the coordination and response to active insider threats, collaborating with counterintelligence, threat intelligence, and law enforcement teams. Correlate behavioral, contextual, and technical indicators to identify and assess potential insider threat incidents. Support investigations by collecting and analyzing digital evidence, documenting findings, and escalating matters to the appropriate parties. Monitor user activity data and alerts to identify potential indicators of insider threats. Analyze system logs, network traffic, and endpoint alerts for suspicious activity. Correlate data from multiple sources (including user and entity behavior analytics (UEBA), data loss prevention (DLP), security information and event management (SIEM) tools, and endpoint detection and response (EDR) solutions) to detect anomalies and patterns indicative of insider threats. Develop and implement detection methods and strategies, including risk scoring and threat analysis tools, and refine alerts based on triage results, understanding of insider threats, and current events. Work closely with internal teams such as CISO Operations, Legal, Human Resources, and Counterintelligence, as well as external partners, to address and resolve insider risk incidents. Qualifications: Bachelor's degree in Information Security or a related field. 5+ years of relevant industry experience. Proficiency in cybersecurity concepts, network protocols, operating systems, encryption, authentication mechanisms, and security tools like SIEM, UEBA, and DLP solutions. Utilize AI-powered platforms like User and Entity Behavior Analytics (UEBA) to identify anomalous activities and patterns indicative of insider threats. Cultivate and heighten AI/ML models to refine detection capabilities by leading the creation and tuning rules, alerts, and risk scoring models to enhance efficiency and accuracy. Familiarity with insider threat regulations, information security reports, and relevant legal and privacy regulations. Experience conducting internal investigations, collecting digital evidence while maintaining chain of custody, and understanding forensic analysis tools. Strong ability to analyze complex data, identify patterns and trends, apply critical thinking and logic to evaluate evidence, and use quantitative and qualitative methods to assess risk. Strong analytical skills to interpret large volumes of data and correlate disparate security signals. Knowledge of incident response processes and digital forensics fundamentals related to insider threat scenarios. Strong communication skills for cross-team coordination, reporting, and documenting of findings. Ethical judgment and discretion, especially when handling sensitive personnel and organizational data. Candidates must be able to obtain a Postal Sensitive Clearance (US Citizenship or Green Card required). Additionally, candidates must not have traveled outside of the USA for a combined period not to exceed 6 months within the last 5 years. What it takes to be successful as Technical talent at NikSoft? Having a combination of job-related technical skills and most importantly personal traits will make you to be successful at NikSoft. Key personal traits include: strong problem-solving abilities adaptability effective and clear verbal communication and a commitment to continuous learning. With majority of tasks being accomplished remotely - having strong work ethic, ethical conduct, and the ability to collaborate effectively within teams are essential for you to be successful, keep the job and thrive on the job. We only hire and keep the best talents possible.